Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: otOPd+yk/N9BrGoYlD99vpvmPmPISbMby1iNOUTyQ6I=
Subject key identifier: A8:B3:18:94:80:12:F9:07:CA:95:0A:24:FB:AB:52:39:C0:71:40:77
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019E1D59D131BE97FC72A01E0733A80458B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 0FD5
Signing time: Tue 12 May 2026 18:01:25 +0000
Manifest this update: Tue 12 May 2026 18:01:25 +0000
Manifest next update: Wed 13 May 2026 18:01:25 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: HrhRlE7DKI1YvYz4hv7FAGNtaH55jsdadV9tSq6k8b0=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:d1:31:be:97:fc:72:a0:1e:07:33:a8:04:58:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: May 12 18:01:25 2026 GMT
Not After : May 13 18:01:25 2026 GMT
Subject: CN=a8b318948012f907ca950a24fbab5239c0714077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:41:20:d0:3b:d1:c7:5c:87:4b:7a:5f:7a:fe:
51:e1:26:ff:94:01:9b:b3:35:d4:b7:5d:d8:1b:4e:
51:51:de:97:9b:28:07:54:78:09:07:57:0d:e7:e8:
63:98:33:07:7c:cc:cc:1d:89:4c:1a:74:33:ac:74:
79:8a:6a:78:fe:ce:05:90:f0:12:19:4b:db:7e:93:
0a:cb:46:2d:1d:d5:19:21:a5:ba:b3:45:40:2e:b0:
db:6a:c1:9e:29:26:d7:3f:f9:e0:b6:18:7c:46:22:
fc:a8:bc:cd:a5:a9:32:50:f7:34:a1:a9:f4:38:19:
01:19:c8:20:53:3f:f2:bc:9d:39:e0:30:01:0f:9d:
5d:75:96:3f:54:3f:f0:52:7e:60:d1:fe:50:94:06:
8f:66:b6:63:4c:13:da:3c:21:68:a6:47:04:c6:9f:
3c:e9:e0:ed:ad:06:b7:1e:7f:2c:ad:b3:87:57:c1:
1a:4f:3e:6f:fa:d9:8c:88:c3:a7:c3:67:c9:84:31:
76:ae:78:ca:72:9f:96:17:13:05:c0:d6:6d:1e:12:
c6:87:d4:97:2a:65:ea:8f:3e:f5:58:e4:7e:b3:80:
7a:fa:8c:ca:bd:34:68:07:1b:12:8c:89:fd:5e:2e:
e0:21:42:b0:3f:1b:21:95:36:0a:cb:5c:f3:35:b9:
20:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B3:18:94:80:12:F9:07:CA:95:0A:24:FB:AB:52:39:C0:71:40:77
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:09:7d:1e:bf:db:b7:0b:ff:66:ab:96:a1:d2:8f:45:16:0d:
d8:82:2d:16:3a:ac:1b:9d:c2:40:97:a8:5d:b4:7a:bd:f6:75:
fe:ac:fd:5d:f8:2a:4d:82:d0:41:58:cf:51:e0:46:58:4e:cd:
cf:6c:84:cc:23:38:f7:41:b9:4a:5f:79:b8:61:d8:9f:f3:a8:
d6:ae:2e:99:54:cd:63:4f:e6:16:f4:47:26:9a:66:82:4c:63:
0f:a6:4a:51:83:61:e1:fe:a3:c9:94:8a:08:0f:e5:68:07:10:
f1:b8:f8:20:27:db:48:1f:f5:94:b3:17:2f:fd:c9:54:b3:be:
39:8b:b9:dd:0a:e4:ad:3b:f8:31:17:f3:d9:ab:9c:46:0c:17:
21:45:79:5d:7f:83:4f:4f:7b:65:3c:da:77:0f:07:15:d3:4d:
93:65:11:5e:70:3a:c7:7b:d1:ec:67:87:6f:8f:e9:30:d6:67:
55:44:b6:df:4d:df:43:98:08:c3:a4:7a:09:3f:70:8f:26:07:
97:6c:03:14:f1:ac:8f:8b:c1:90:18:2f:1a:05:97:d7:84:b7:
ad:e6:94:db:c9:57:a0:c4:5a:37:44:07:4b:69:c8:1d:dd:62:
57:27:64:fd:6c:e5:ca:56:38:71:01:2f:c5:6a:83:52:fd:5c:
eb:80:a2:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:26:19 2026 by rpki-client